Техническая информация
- '<SYSTEM32>\reg.exe' query "HKCU\software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders" /v History
- '<SYSTEM32>\reg.exe' query "HKCU\software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders" /v NetHood
- '<SYSTEM32>\reg.exe' query "HKCU\software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders" /v Recent
- '<SYSTEM32>\cmd.exe' /c %TEMP%\\ПµНіА¬»шЗеАн.bat
- '<SYSTEM32>\reg.exe' query "HKCU\software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders" /v Cache
- '<SYSTEM32>\reg.exe' query "HKCU\software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders" /v Cookies
- dnf.exe
- %TEMP%\cleantmp.txt
- %TEMP%\ПµНіА¬»шЗеАн.bat
- %TEMP%\cleantmp.txt
- ClassName: 'Shell_TrayWnd' WindowName: ''